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SECURE COMPUTER SYSTEM 
FIELD OF THE INVENTION 

The present invention relates to secure computer systems in general. 

BACKGROUND OF THE INVENTION 

The need for secure computer systems is well known. The need for secure 
computer systems falls into several categories. The need for secure capabilities which enable a 
computer to work in a secure environment, such as an electronic mail, remote banking, 
Internet, secure communications, telefax, or smart card environment is well known and falls 
into a first category of need. In a second category of need, it is well known that expensive 
computer CPU chips are often subject to theft. Unfortunately, individual expensive CPU chips 
can not easily be identified, and hence the recovery of stolen CPU chips is difficult. There is 
therefore a need to protect expensive CPU chips. 

Methods and apparatus useful in secure computing are described in the 
following patent applications, commonly owned with the present application, the disclosures 
of which are hereby incorporated herein by reference: 

Israel patent applications 11 3375 and 1 15534; and 

United States patent applications 08/154,220 and 08/437,223. 

Methods and apparatus useful in secure computing are described in the 
following publications: 

D. E. Denning and M. Smid, "Key escrowing today", IEEE Communication 
Magazine, September 1994, pp. 58 - 68; 

C. Gressel, R. Granot, and I. Dror, "International Cryptographic 
Communication Without Key Escrow", International Cryptographic Institute '95, Washington 
DC, September 22, 1995; 

R. L. Rivest, A. Shamir, and L. Adleman, "A method for obtaining digital 
signatures and public-key cryptosystems", Communications of the ACM Vol. 2 1 #2, February 
1978, pp. 120-126; 

DES Modes of Operation, HPS PUB 81, National Bureau of Standards, US 
Department of Commerce, Washington, DC, 1 98 1 ; 

MC68HC05SC49. 8-bit microcomputer with EEPROM and N modulo M 
exponent coprocessor product preview. Motorola semiconductor technical datx Schaumburg 
IL, 1993; 

I 
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MC68HC05SC30, Enhanced 8-bit microcomputer with EEPROM and N 
modulo M exponent coprocessor product preview, Motorola semiconductor technical data. 

Schaumburg, IL 1993; 

ST16xF74 CMOS crypto-computer family ST16xF74, SGS-Thomson 

Microelectronics, Agrate, Italy, October 1993; 

ST16CF54 CMOS MCU based safeguarded smartcard 1C with modular 
arithmetic processor, SGS-Thomson Microelectronics, Agrate, Italy, September 1994; and 

Cryptoprocessor chip includes embedded cryptolibrary, SGS-Thomson 
Microelectronics, Agrate, Italy, press release K491M, October 1994. 

The disclosures of the above publications and of the publications cited therem 
are hereby incorporated by reference. The disclosures of all publications mentioned in this 
specification and of the publications cited therein are hereby incorporated by reference. 
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SUMMARY OF THE INVENTION 

The present invention seeks to provide an improved secure computer system. 
In the present invention, an authenticator computer is embedded in the same package with a 
host CPU. The embedded authenticator computer may provide secure capabilities such as 
those described above. The embedded authenticator computer may also provide identifying 
information including proof of identity. The identifying information may aid in preventing 
theft of the computer system and/or may aid in identification of a stolen computer system. 
Because the authenticator computer is embedded in the same package with the host CPU, 
removing the authenticator computer in order to circumvent the anti-theft capabilities thereof 
will generally be very difficult and/or too expensive to attempt. 

There is thus provided in accordance with a preferred embodiment of the 
present invention a secure computer including a host CPU and an authenticator computer, 
wherein both the host CPU and the authenticator computer are embedded in a single package. 
The authenticator computer may have an identity and, and the authenticator computer may 
provide proof of the identity upon receiving an external signal from a verifying device. The 
proof of the identity may include origin information and/or an audit trail. 

The secure computer may also include a smart card receiver, which may 
comprise a reader/writer card, including at least one smart card acceptor socket, each smart 
card acceptor acceptor socket being adapted to receive a smart card, wherein the authenticator 
verifies the smart card. The at least one smart card acceptor socket may include a plurality of 
smart card acceptor sockets. j 

The authenticator may control access to a controlled device. The authenticator 
provides data protection, including data encryption and/or data decryption. The data 
protection may include providing and/or verifying a digital signature. 

I 

The authenticator may protect data transmission between the secure computer 
and a remote device, optionally using approved protocols for transnational encryption,! as well 
as approved protocols for authentication origin and contents of documents using an electronic 
signature. 

There is also provided in accordance with another preferred embodiment of the 
present invention a method for securing a host computer, the method including providing a 
host CPU. providing an authenticator computer, and embedding both the host CPU and the 
authenticator computer in a single package. 
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DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS 
Reference is now made to Fig. 1 which is a simplified pictorial illustration of a 
secure computer system 10 constructed and operative in accordance with a preferred embodi- 
ment of the present invention. The secure computer system 10 comprises an authenticator 
computer 20. The authenticator computer 20 may be any appropriate authenticator computer, 
such as a cryptocomputer chip or a computer chip designed to rapidly process modular 
arithmetic operations useful for performing authentication, encryption, and decryption, as is 
well known in the art. Preferably, the authenticator computer 20 may be a model ST16CF54 
available from SGS-Thomson. The authenticator computer 20 may alternatively be a 
MC68HC05SC49 8-bit microcomputer, commercially available from Motorola, Schaumburg 
IL, USA. 

The authenticator computer 20 is embedded in a single package with a host 
CPU 30. The host CPU 30 may be any appropriate CPU. It is appreciated that the present 
invention, by providing anti-theft capabilities, is particularly useful in the case where the host 
CPU 30 is an expensive CPU. 

Preferably, in order to provide optimal anti-theft capabilities, the embedding of 
the authenticator computer 20 and the host CPU 30 into a single package comprises 
permanently bonding together the authenticator computer 20 and the host CPU 30. The 
system of Fig. 1 also comprises an electrically insulating thermally conducting layer 32, 
covering the authenticator computer 20 and the host CPU 30. The electrically insulating 
thermally conducting layer 32 may comprise ceramic or any other suitable electrically 
insulating thermally conducting material. It is appreciated that alternative and/or additional 
methods of bonding the authenticator computer 20 and the host CPU 30 may be used, such as, 
for example, providing a bonding layer (not shown) between the authenticator computer 20 
and the host CPU 30. 

The system of Fig. I also comprises an external connection 35. The external 
connection 35 shown in Fig. 1 is arranged, by way of example only, into two smart card reader 
connectors 37. The external connection 35, which typically comprises a plurality of pins, is 
operative to provide an electrical connection between the authenticator computer and external 
devices, such as one or more smart card readers. The external connection 35 may also be 
operative to provide an electrical connection to an external device comprising a verification 
device, as described below with reference to Fig. 6. 
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The adaptor 45 is adapted to receive the authenticator computer 20, typically 
inside the adaptor 45. The adaptor 45 is also adapted to receive the host computer 30, 
typically on top of the adaptor 45. The adaptor 45 is operative to provide an electrical 
connection between the host CPU 30 and the authenticator computer 20, and also to provide 
an electrical connection via the external connection 35 to external devices, as explained above. 

Fig. 2C is an exploded view of the secure computer system 10 of Fig. 1, 
packaged using a pin grid array packaging method. The system of Fig. 2C comprises a pin 
grid board 55, comprising a plurality of pins 60. At least some of the plurality of pins 60 
extend upward above the pin grid board 55, allowing connection to an authenticator printed 
circuit board (PC board) 65. The host CPU 30 is mounted to the PC board 65, typically on 
the upper side thereof, so that a plurality of pins (not shown) on the underside of the host CPU 
30 extend through holes in the PC board 65 and make electrical contact with the plurality of 
pins 60. The authenticator computer 20 is mounted on the pin grid board 55, typically on the 
upper side thereof. The PC board 65 is operative to provide an electrical connection between 
the host CPU 30 and the authenticator computer 20, and also to provide an electrical 
connection via the external connection 35 to external devices, as explained above. 

It is appreciated that the embodiments of Figs. 2 A - 2C are provided by way of 
example only, and that a wide variety of packaging methods may be used in packaging the 
secure computer system 10 of Fig. 1 . 

The operation of the system of Fig. 1 is now briefly described. The secure 
computer system 10 may receive a request to be processed from an external device [through 
the external connection 35 and operate thereon. Requests may also be processed internally; 
that is, a request may be initiated by the host CPU 30 and may then be processed by the 
authenticator computer 20. In the case of either an external or an internal request, th*j output 
of processing the request by the authenticator computer 20 may be provided either through the 
external connection 35 or to the host CPU 30, which typically further processes the output. 
Typically, a request comprises a request to perform one of the following: a digital signature 
operation; a data transmission protection operation; a data protection operation; an access 
control operation; a smart card verification operation; or and proof of identity operation. 

Reference is now made to Fig. 3. which is 3 simplified flowchart illustration of 
a preferred method of operation of the secure computer system 10 of Fig. 1 The method of 
Fig. 3 preferably includes the following steps: 
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If the request is to control access to an external device, the access control 
request is processed by the authenticator computer 20 (step 140). The external device may 
comprise any appropriate external device such as, for example, any of the following: a 
computerized device; a computer peripheral device; a locked door; or any other locked access 
apparatus. Processing of the access control request typically comprises receiving a request, 
typically from the host CPU 30 and verifying that the request is legitimate. Verifying that the 
request is legitimate may be performed using any appropriate method, such as a method well 
known in the art, for example the methods described in R. L. Rivest, A. Shamir, and L. 
Adleman, referred to above. 

If the request is to verify a smart card, the smart card is verified (step 150). 
Smart cards, as is well known in the art, may be used in a wide variety of ways, including the 
following: to store identifying information about an individual; to store personal or medical 
information about an individual; and/or to store financial information for use in carrying out 
transactions. Verifying the smart card may include verifying that the smart card is valid, as is 
well known in the art. Verifying the smart card may also include reading data from the smart 
card, as is well known in the art. Verifying the smart card may also include carrying out a 
financial transaction based on information stored in the smart card, as is well known in the art. 
Methods for verifying a smart card include those described in R. L. Rivest, A. Shamir, and L. 
Adleman, referred to above. j 

Reference is now additionally made to Fig. 5, which is a simplified {pictorial 
illustration of a further alternative preferred embodiment of the present invention. The system 
of Fig. 5 comprises a computer 185, the computer 185 comprising the secure computer system 
10. The computer 185 is operatively attached to a smart card receiver 190. The smart card 
receiver 190 is operative to receive a first smart card 195 and, optionally, a second smart card 

i 

200 in one or more smart card acceptor sockets 205. It is appreciated that the smart card 
acceptor sockets 205 are adapted to accept the particular form of the smart cards 195 alnd 200 
chosen for use, and that the card form is shown in Fig. 5 by way of example only. 

When the second smart card 200 is used, the first smart card 195 typically 
represents customer information in a financial transaction, and the second smart card 200 
typically represents merchant information or bank teller information in a financial transaction. 
The secure computer system 10 is operative to verify the first smart card 195 and, optionally, 
the second smart card 200, as described above. It is appreciated that by using both the first 

smart card 195 and the second smart card 200 it is possible to record proof of a transaction 
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Proof of identity preferably comprises at least one of the following: serial 
number; origin, including at least one of manufacturer, date of production, place of 
production, and batch run of production; and information about a computer or other electronic 
product or other object in which the secure computer system 10 is used. It may also include 
public key certificates necessary for controlled use of licensed software. It is appreciated that 
proof of identity may comprise information relating to one or more of the following: the 
identity of the secure computer system 10; the identity of the authenticator computer 20; the 
identity of the host CPU 30; and the identity of the computer of other electronic product or 
other object in which the secure computer system 10 is used. Proof of identity may also 
include an audit trail typically comprising historical information concerning the manufacture 
and use of the secure computer system 10. 

Reference is now made to Fig. 7, which is a simplified block diagram 
illustration of the secure computer system 10 of Fig. 1. The system of Fig. i is self- 
explanatory, except as follows. The external connection 35 is preferably fused, to prevent 
application of an external over-voltage from damaging the authenticator computer 20 and thus 
removing the authenticator computer 20 from operation. Such damage might allow access 
without intervention by the authenticator computer 20 destroying the authenticator with the 
unique identity allowing the use of a stolen CPU. 

It is appreciated that the software components of the present invention may, if 
desired, be implemented in ROM (read-only memory) form. Preferably, in the present 
invention a ROM would be electrically programmable and masked on during silicon 
fabrication. Preferably most of the program would be masked in the fabrication. Keys would 
be generated internally with the real random number generator and stored electrically 
programmable ROM and propriety program can be downloaded by a trusted third party using 
protocols as mentioned above. The software components may, generally, be implemented in 
hardware, if desired, using any conventional techniques. 1 

It is appreciated that various features of the invention which are, for clarity, 
described in the contexts of separate embodiments may also be provided in combination in a 
single embodiment. Conversely, various features of the invention which are. for brevity, 
described in the context of a single embodiment may also be provided separately or in any 
suitable subcombination. 
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It will be appreciated by persons skilled in the art that the present invention is 
not limited to what has been particularly shown and described hereinabove. Rather, the scope 
of the present invention is defined only by the claims that follow: 
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CLAIMS 

1 . A secure computer comprising: 
a host CPU; and 

an authenticator computer, 

wherein both the host CPU and the authenticator computer are embedded in a 

single package. 

2. Apparatus according to claim 1 wherein the authenticator computer has an 
identity and wherein the authenticator computer provides proof of the identity upon! receiving 
an external signal from a verifying device. 

3. Apparatus according to claim 2 wherein the proof of the identity comprises 
origin information. 

4. Apparatus according to claim 3 wherein the proof of the identity also 
comprises an audit trail. 

5. Apparatus according to claim 1 and also comprising a smart card receiver 
comprising at least one smart card acceptor socket, each said smart card acceptor socket being 
adapted to receive a smart card, j 

wherein the authenticator verifies the smart card. 

6. Apparatus according to claim 5 wherein the at least one smart card acceptor 
socket comprises a plurality of smart card acceptor sockets. 

i 
i 

7. Apparatus according to either claim 5 or claim 6 wherein the authenticator 
controls access to a controlled device. 

8- Apparatus according to claim 1 wherein the authenticator provides data 

protection. 
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9. 

encryption. 
10. 

decryption. 
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x ♦« ,nv of claims 8-11 wherein the data protection 
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comprises providing a digital signature, 
verifying a digital signature. 

• • o «,w«n the data protection comprises 

R Apparatus according to claim 9 wherem the P 

verifying a digital signature. 

^in« to claim 10 wherein the data proteaion comprises 
j 5 Apparatus according to ciaim 

verifying a digital signature. 

mrita to claim 11 wherein the data protection comprises 
16 Apparatus according to ciaira 

verifying a digital signature. 

^.i*^^ w i wherein ^ authe , cator protec ts data 

transmission between the secure computer and a remote device. 

a- ,„ rlAim 18 wherein the authenticates protects data 
1 9 Apparatus according to claim l» wne 

• ,^Hnrotocols for transnational encryption, 
transmission using approved protocols ior 
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20. A method for securing a host computer, the method comprising: 

providing a host CPU; 
providing an authenticator computer; and 

embedding both the host CPU and the authenticator computer in a singl 

package. 
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